zkfingerd / News: Recent posts

Yeah, you heard right, everyone. I'm actually releasing zkfingerd news sober!

So, here you go. This one compiles and runs on my Debian-unstable box. It's not a permanent fix, but it works for now, until I track down exactly what's going where and causing those fun segfaults that just don't happen on my Slackware box.

This version also has a nifty little dialog(1) interface for the make process. It's worth downloading just to watch it compile on a 386.... read more

Do I *ever* post sober?

Alright, I am definitely still working on zkfingerd. Unfortunately, real life (and a paying job -- sort of) have pitched dibs on my time. Sure you understand.

The problem appears to be related to my xappend() function. I can't really recall more details at the moment, since I'm working on getting seriously loaded.

By the way, if you're *not* having this problem -- I see there are actually people downloading this stuff, wth? -- I'd appreciate a comment, or something, just so I know what platforms it's working on and what it's not.... read more

Hi there!

The latest version of zkfingerd segfaults on Debian [unstable].

I will be fixing this. There will be one more maintenance release of zkfingerd some time in the near future.

Attention zkfingerd users!

I am drunk.

That is all.

I'm no longer maintaining zkfingerd. There will be one more release, and I'm all done. If anyone wants to take over my little project, contact me at jerker@www.com.

Marclar just marclar marclar, so marclar marclarred the marclar for marclar a marclar and marclar marclar. Marclar is a marclar marclar. After a marclar of marclar, marclar marclar, and marclar, marclar marclar, and marclar you marclar. Marclar!

It's a bird..
It's a plane..
No, it's KernelMan, faster than a speeding bullet, to your rescue.
Doing new kernel versions in under 5 seconds flat..
-- Linus, in the announcement for 1.3.27

s/kernel/zkfingerd/i; s/linus/cuervo/i;
s/1\.3\.27/2.0.6/; print;

zkfingerd's "public area" feature is now stabilized.

This version fixes an oversight with user file xfers. People using older versions should upgrade or disable the "user-xfers" option in the configuration file.

This version of zkfingerd fixes a moderate security hole which would allow usernames to be listed via ambiguity matching. Users (wow, there are actual users now -- probably just more people looking for bugs) should either upgrade or disable username ambiguity matching.

zkfingerd v2.0.4a is up. This version includes some bugfixes and the public file area thing I never got around to reimplementing after v0.9, not to mention -- drumroll, please -- a manpage! Yes, a real, live manpage! A confusing one, even! And it's a good thing, too, cuz with the new formatting stuff I just pumped in, you're gonna need it. Are we having fun yet?

zkfingerd 2.0.1 released. This fixes a gaping security hole I managed to overlook, possibly while once again programming drunk. It is critical that anyone running version 2.0.0 upgrade immediately.

After a bout of sheer boredom (and some tequila), I've
somehow woken up next to a brand new version of
zkfingerd, as in completely new code. How this happened,
I have no idea, but I think I need to quit drinking so much.

The new version supports output templates, and most of
the stuff the old version did. The only thing missing
right now is file indexing and transfers (finger user/@host),
which I should get around to implementing soon, probably
after another bottle or two.... read more

A buffer overflow vulnerability (wtf?!) has been
discovered in zkfingerd by "marcetam".

The vulnerability appears to be present in version
r3-0.9 and possibly some preceding versions, but
does not appear to be present in 0.9.2 or later.

Users are urged to upgrade to the most recent
version available via CVS as soon as is possible,
or disable zkfingerd until a tarball is made
available.

An exploit appears to be privately available.

Problems involving say()/putlog() patched; see soon-to-be updated doc/Credits and doc/History. Older versions should
either grab the latest CVS tree or disable zkfingerd until the
new tarball (0.9.2) is available.